package com.chao.interceptor;

import com.chao.entity.User;
import com.chao.utils.InterceptorUtils;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

public class AuthorityInterceptor implements HandlerInterceptor {

    @Override
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
        HttpSession session = request.getSession();
        String uri = request.getRequestURI();
        User user = (User) session.getAttribute("user");
        String method = request.getMethod();
        Integer privilege = user.getPrivilege();
        if (method.equals("PUT") || method.equals("DELETE") || method.equals("POST")) {
            if (privilege == 0) {
                return true;
            } else {
                System.out.println("被拦截的请求" + uri);
                return false;
            }
        } else {
            if (InterceptorUtils.checkURL(uri)) {
                if (privilege == 0) {
                    return true;
                } else {
                    System.out.println("被拦截的请求" + uri);
                    return false;
                }
            }
        }
        return true;
    }

    @Override
    public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {
        HandlerInterceptor.super.postHandle(request, response, handler, modelAndView);
    }

    @Override
    public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {
        HandlerInterceptor.super.afterCompletion(request, response, handler, ex);
    }
}
